CVE-2014-6197

IBM Security Network Protection <5.2.0.0 FP5-5.3.0.0 FP1 - CSRF

Title source: llm
STIX 2.1

Description

IBM Security Network Protection 5.1.x and 5.2.x before 5.2.0.0 FP5 and 5.3.x before 5.3.0.0 FP1 allows remote attackers to conduct clickjacking attacks via unspecified vectors.

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21693542
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98609

Scores

EPSS 0.0143
EPSS Percentile 69.8%

Details

CWE
CWE-20
Status published
Products (6)
ibm/security_network_protection_xgs_firmware 5.1
ibm/security_network_protection_xgs_firmware 5.1.1
ibm/security_network_protection_xgs_firmware 5.1.2
ibm/security_network_protection_xgs_firmware 5.1.2.1
ibm/security_network_protection_xgs_firmware 5.2
ibm/security_network_protection_xgs_firmware 5.3
Published Jan 17, 2015
Tracked Since Feb 18, 2026